We've expanded our support to the following (browser-based) password managers:
When connecting for the first time with an application that uses XFA to verify device security, the onboarding page will now include:
We've expanded our insights to include users/devices that used the 'I'll do this later'-button when an application policy still allows it.
This allows administrators to manage their gradual onboardings better while not impacting operations in any way. You can always turn make device verification mandatory by disabling 'allow users to skip device verification' in the application policy.
We've improved the devices overview to now include more information about the device, visualized with clear indications about its security status.
We've added support in the desktop browser extension to detect installed password managers, to push the recommended practice of using a password manager to store unique passwords.
Note: The security check is not enabled by default, but can be enabled by the user (or by request of the organization).
2 new checks are now available:
We've rebranded the web experience to provide more information for users and provide clear actions for users to act upon and get their devices secure!
To scope your policies to specific (groups of) users, you can now use an email whitelist to specify email or domain for users that should be included. Useful during during your first onboarding when you want to try out XFA with a small set of people!
Note: leaving the field empty will apply the policy to all users (which is the default).
Now, XFA has a new mobile experience that rebrands the introduction, overview, and guides. Find the app in your app store and enjoy our rebranded look & feel!
XFA is now a Vanta Partner!
You can use XFA to provide device security proof automatically for your compliance needs, pushing updates regularly to Vanta.
Get started in the Vanta Dashboard under Integrations.